Muhammara@* Security Vulnerabilities and Issues — Muhammara@* CVE List

Lucene search

Muhammara ProjectMuhammara*

3 matches found

CVE•added 2022/11/01 5:15 a.m.•47 views

CVE-2022-25892

The package muhammara before 2.6.1, from 3.0.0 and before 3.1.1; all versions of package hummus are vulnerable to Denial of Service (DoS) when supplied with a maliciously crafted PDF file to be parsed.

7.5CVSS7.4AI score0.00185EPSS

CVE•added 2022/11/28 3:15 p.m.•45 views

CVE-2022-41957

Muhammara is a node module with c/cpp bindings to modify PDF with JavaScript for node or electron. The package muhammara before 2.6.2 and from 3.0.0 and before 3.3.0, as well as all versions of muhammara's predecessor package hummus, are vulnerable to Denial of Service (DoS) when supplied with a ma...

7.5CVSS7.5AI score0.00062EPSS

CVE•added 2022/11/01 5:15 a.m.•40 views

CVE-2022-25885

The package muhammara before 2.6.0; all versions of package hummus are vulnerable to Denial of Service (DoS) when PDFStreamForResponse() is used with invalid data.

7.5CVSS7.4AI score0.00111EPSS